01900 818000 cyber@indelibledata.co.uk
By Jason McNicholas Cyber Essentials Assessor During Cyber Essentials Plus Audits we’re often asked the question “How is it decided which vulnerabilities are a fail and which ones are not?”. To decide this, we use the CVSS v3.0 metrics and score provided for the vulnerabilities. The first thing to be checked is the score, if …
By Euan Henderson Cyber security apprentice The Department of Health has confirmed its Test and Trace initiative to combat COVID 19 was launched without an assessment of the impact on Privacy being carried out. The Open Rights Group (ORG) claims this means the initiative, launched in May, is unlawful. The Government has defended the scheme …
By Euan Henderson Cyber Security Apprentice Google has recently changed its default two-factor settings from SMS to device-based prompts. This change was implemented in July in the hope of preventing the exploits currently available, such as SIM cloning and social engineering, to gain access to the code. The change could minimise these attacks as it …
By Euan Henderson Cyber Security Apprentice Microsoft has released two out-of-band security updates as an emergency update after two remote code execution vulnerabilities were found within the Windows Codecs Library. Both CVE-2020-1425 and CVE-2020-1457 warn of a large image file that is maliciously crafted and, due to how the Windows Codecs Library handles objects in …
By Jason McNicholas Cyber Security Technologist As live sports return to our televisions and streaming services, one of the most publicised (and popular) sporting returns is English Football. Due to the real possibility of a second wave of COVID-19, these games are being played behind closed doors in empty stadiums. This means that most fans …
By Hannah Kelly Cyber Security Apprentice As England eases its COVID-19 Lockdown restrictions and businesses start to reopen, it’s essential that proper measures are put in place to facilitate safe working practices during the tail end of an international pandemic. Indelible Data is treating the situation as if all employees could unknowingly have the virus. …
By Tony Wilson Managing Director (The document I was looking for before taking the exam – it didn’t exist but does now). Chances are, if you’ve found this blog, you have been trawling the internet looking for information regarding the EC-Council ECSA (Practical) exam. There is very little information about the actual process on any …
By Euan Henderson Cyber Technologist Apprentice In February the NCSC published guidance on what both developers and consumers of software should focus on when implementing or buying a new product. It has produced a checklist for products to show they are resistant to elevated threats. This Blog focuses on the high level assurance principles, set …
By Euan Henderson Cyber Security apprentice Earlier this year, Google released a statement outlining the company’s plan to move the data of UK users from its datacentres in the EU to the US. Services, including Gmail, YouTube and the Android Play store are likely to be affected and it is believed that this move is …
By Jason McNicholas Cyber Security Technologist In the midst of the COVID-19 pandemic, people around the world have been working from home in order to prevent the virus spreading. Naturally, a sudden change to home working for millions of employees used to an office environment, causes significant security concerns We have prepared an easy guide …